Vulnerabilities

CVE-2021-45959

by Fred · 31/12/2021

{fmt} 7.1.0 through 8.0.1 has a stack-based buffer overflow in fmt::v8::detail::dragonbox::umul192_upper64 (called from fmt::v8::detail::dragonbox::cache_accessor::compute_mul and fmt::v8::detail::dragonbox::decimal_fp fmt::v8::detail::dragonbox::to_de).

Date published : 2021-12-31

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36110

https://github.com/fmtlib/fmt/commit/2038bf61831eb8faede0883965364a974d1350fe

Related

Tags: Cybersecurity Alert